Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/oujXRIskY8iSKsPWdbAKBsi7PD4.roa
File: oujXRIskY8iSKsPWdbAKBsi7PD4.roa (raw, json)
Hash identifier: CkMSdiF8lCcvNFkMUGa3QErMzDhUV0m1JYhP4pvg/Yc=
Subject key identifier: A2:E8:D7:44:8B:24:63:C8:92:2A:C3:D6:75:B0:0A:06:C8:BB:3C:3E
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 018A5FA552BB802542511F7552B57E41B7B8
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/oujXRIskY8iSKsPWdbAKBsi7PD4.roa
Signing time: Mon 04 Sep 2023 10:03:04 +0000
ROA not before: Mon 04 Sep 2023 10:03:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197216
IP address blocks: 185.55.230.0/24 maxlen: 24
185.55.229.0/24 maxlen: 24
185.55.228.0/24 maxlen: 24
185.239.124.0/24 maxlen: 24
185.55.231.0/24 maxlen: 24
185.239.126.0/24 maxlen: 24
185.199.38.0/24 maxlen: 24
185.199.37.0/24 maxlen: 24
194.145.63.0/24 maxlen: 24
185.199.36.0/22 maxlen: 22
195.189.80.0/22 maxlen: 22
79.98.105.0/24 maxlen: 24
185.228.24.0/22 maxlen: 22
79.98.104.0/24 maxlen: 24
79.98.108.0/24 maxlen: 24
79.98.107.0/24 maxlen: 24
79.98.106.0/24 maxlen: 24
79.98.111.0/24 maxlen: 24
79.98.110.0/24 maxlen: 24
79.98.109.0/24 maxlen: 24
185.52.205.0/24 maxlen: 24
185.52.204.0/24 maxlen: 24
185.52.204.0/22 maxlen: 24
185.52.206.0/24 maxlen: 24
2a02:80e0::/30 maxlen: 30
2a01:b6a0::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 14 Oct 2023 08:36:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:a5:52:bb:80:25:42:51:1f:75:52:b5:7e:41:b7:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Sep 4 10:03:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2e8d7448b2463c8922ac3d675b00a06c8bb3c3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:0e:f9:78:e9:32:58:ff:fb:33:0f:25:9a:da:
70:8c:37:57:9a:2c:7b:56:2d:db:39:ec:fe:c3:61:
65:84:17:4f:63:27:dd:91:49:f7:ce:e1:1e:55:59:
7b:5d:ff:eb:76:13:f1:96:15:47:4a:74:1d:31:91:
0b:96:91:bd:e4:69:00:08:cc:e4:fc:6e:9c:97:eb:
a5:cc:bf:d0:0a:ff:51:93:a7:d4:15:5c:6e:0d:00:
9c:ff:2b:eb:50:27:ec:a9:1e:9f:ad:c1:ec:5b:cb:
bd:9b:33:65:8f:20:a7:59:5f:97:f1:fc:25:fc:78:
60:d9:be:7b:4d:f0:db:ff:c5:3f:1e:79:be:a7:39:
b9:4e:81:da:1e:f8:da:2d:85:71:46:76:8d:41:38:
24:e5:61:d4:b8:6d:ed:59:86:ce:25:15:9c:c5:ac:
46:77:8a:3a:3d:33:e8:af:98:18:91:6a:1b:35:96:
11:ea:07:cb:ca:e6:05:da:03:f9:f5:c9:c3:d3:f3:
40:9c:4d:a3:c5:1d:86:6b:3d:9b:2f:e5:88:71:a2:
c2:f9:e5:45:7d:9a:76:17:76:74:68:5b:4e:1a:87:
d6:1c:fa:28:19:07:14:48:c8:58:d8:bc:5b:55:08:
cb:69:c6:ac:d5:49:76:ec:d0:83:4b:b1:79:ab:4b:
fb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:E8:D7:44:8B:24:63:C8:92:2A:C3:D6:75:B0:0A:06:C8:BB:3C:3E
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/oujXRIskY8iSKsPWdbAKBsi7PD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.104.0/21
185.52.204.0/22
185.55.228.0/22
185.199.36.0/22
185.228.24.0/22
185.239.124.0/24
185.239.126.0/24
194.145.63.0/24
195.189.80.0/22
IPv6:
2a01:b6a0::/32
2a02:80e0::/30
Signature Algorithm: sha256WithRSAEncryption
11:42:c1:a4:70:b5:1e:af:6e:66:79:06:26:31:65:e6:2d:13:
45:96:7c:34:01:ee:72:1f:6a:61:8f:7b:46:36:1b:a2:ef:48:
61:99:2e:40:66:b9:56:03:cb:3b:26:30:c4:e2:16:ed:04:86:
aa:f0:75:07:5f:e3:3c:6f:e0:67:d0:db:57:48:e3:4e:b8:e0:
e8:95:1f:47:12:b9:e4:5c:42:1f:63:f1:d0:18:22:28:f4:4e:
65:37:7f:75:1f:cd:ce:28:06:a3:3d:f5:51:fd:2f:85:ea:8a:
69:d0:62:d4:f6:f5:01:c6:65:c0:27:eb:ca:32:2d:ec:0c:53:
06:d5:66:7e:55:61:81:ae:93:f3:b2:73:75:fb:57:2d:63:fa:
b9:dc:2b:0c:e8:7e:0d:54:43:66:fc:94:88:fc:71:d5:3f:0b:
08:2d:88:1c:c1:18:0c:1d:6a:7f:1a:eb:80:4d:b2:87:33:31:
38:08:54:23:3a:41:3e:35:e7:06:ef:83:80:6d:ed:5b:35:f0:
6b:ca:20:c9:2d:db:e1:b9:85:7c:06:9b:9d:8e:0c:19:67:16:
98:15:72:51:05:46:95:cd:c7:42:33:4a:5b:cf:58:20:37:5b:
7d:95:ce:d4:75:04:af:13:f1:fe:0a:f6:9a:31:36:6c:6c:4d:
c5:b3:48:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:24 2024 by rpki-client on console-ams.rpki-client.org